Vulnerabilities > Tcman > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-10-04 CVE-2022-36276 SQL Injection vulnerability in Tcman GIM 8.0.1
TCMAN GIM v8.0.1 is vulnerable to a SQL injection via the 'SqlWhere' parameter inside the function 'BuscarESM'.
network
low complexity
tcman CWE-89
critical
 9.8
9.8
2021-12-17 CVE-2021-40850 SQL Injection vulnerability in Tcman GIM 11.0/8.0
TCMAN GIM is vulnerable to a SQL injection vulnerability inside several available webservice methods in /PC/WebService.asmx.
network
low complexity
tcman CWE-89
critical
 9.8
9.8